Added fetching pub and private SealedSecrets key

Small helper to fetch current Kubeseal cert
2025-09-07 15:46:11 +02:00 · 2025-09-07 15:38:29 +02:00
2 changed files with 12 additions and 0 deletions
--- a/02-k8s/.gitignore
+++ b/02-k8s/.gitignore
@@ -0,0 +1,3 @@
+# Kube Seal backup
+kubeseal.cert
+kubeseal.key
--- a/02-k8s/fetch_kubeseal_certs.sh
+++ b/02-k8s/fetch_kubeseal_certs.sh
@@ -0,0 +1,9 @@
+#!/usr/bin/bash
+
+rm kubeseal.cert kubeseal.key 2> /dev/null
+
+# public cert
+(umask 0077 && kubeseal --controller-namespace=sealed-secrets --fetch-cert > kubeseal.cert)
+
+# full cert backup
+(umask 0077 && kubectl get secret -n sealed-secrets -l sealedsecrets.bitnami.com/sealed-secrets-key -o yaml > kubeseal.key)
Author	SHA1	Message	Date
Marcel Straub	a010a52df5	Added fetching pub and private SealedSecrets key	2025-09-07 15:46:11 +02:00
Marcel Straub	df98f3f211	Small helper to fetch current Kubeseal cert	2025-09-07 15:38:29 +02:00